Certified in Risk and Information Systems Control (CRISC) — Question 10
Which of the following will significantly affect the standard information security governance model?
Answer options
- A. Currency with changing legislative requirements
- B. Number of employees
- C. Complexity of the organizational structure
- D. Cultural differences between physical locations
Correct answer: C
Explanation
The complexity of the organizational structure (C) influences how information security policies are implemented and managed, making it a critical factor in governance. The other options, while relevant, do not directly impact the governance model to the same extent; legislative requirements, employee numbers, and cultural differences primarily affect operational aspects rather than governance structure.